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What is claimed is: 

A method for electronic commerce, comprising: 

sending from a merchants computer over an internet network to a consumer's computer, a 
merchant message including a wallet (initiation message, a merchant digital signature, and 
a digital certificate from an acquiring bank, said wallet initiation message including a 
payment amount, an order description, and a timestamp; 



starting a consumer's wallet program in said consumer's computer in response to said 
wallet initiation message; 

15 sending from said consumer's computer consumer identity and authentication information 
and said merchant message, to an issuer gateway for an issuing bank; 
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verifying at said issuer gateway said merchant's signature to prove that the consumer is 
dealing with the actual merchant and validating at said issuer gateway the merchant's 
certificate and the acquirer's certificate to prove that the merchant and issuer share a 
common financial arrangement; 

said issuer gateway verifying the consumer's account and ensuring that funds and/or 
credit are available to support the payment amount, then authorizing payment by sending 
over said internet network an authorization token, an issuer's digital certificate, said 
wallet initiation message, and a reference to said consumer's credit or debit card number; 



said authorization token including the payment amount, order description, timestamp, a 

] 

random nonce plus a merchant identifier and a reference to the consumer's credit or debit 
30 card number; and 



35 



said merchant's computer receivjjng said authorization token and fulfilling said order 
description. 



2. The method for electronic commerce of claim 1, which further comprises: 
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sending from said consumer's computer a start message over the internet network to the 
merchant's computer, to initiate said merchant's message. 

5 

3. The method for electronic commerce of claim 1, wherein said wallet initiation 
message includes a nonce. 

10 4. The method for electronic commerce of claim 1, wherein said merchant's computer 
further performs the steps comprising: 

receiving said authorization token; 

it! i 

$ 15 verifying the issuer's signature, digital certificate, the payment amount and merchant 

1U 

l{] identity in the authorization token; 

m 

l*i verifying the freshness of the authorization token via the timestamp in the token; 
$ 

• 5 20 using the nonce in the authorization token to recognize duplicate tokens; and 

i • ■ 
at ; 

*y fulfilling said order description. 

ill 
0 

25 5. The method for electronic commerce of claim 1, wherein said consumer identity and 
authentication information is a userid and a password. 

6. The method for electronic commerce of claim 1, wherein said consumer identity and 
30 authentication information is an ATM debit card number and PIN. 

7. The method for electronic commerce of claim 1, wherein said consumer identity and 
authentication information is a smart card's account number and a symmetric Message 

35 Authentication Code (MAC). 
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8. The method for electronic commerce of claim 1, wherein said consumer identity and 
authentication information is a smart card's account number and an asymmetric digital 
signature. 



9. The method for electronic commerce of claim 1, wherein said consumer identity and 
authentication information is a consumer's digital signature and digital certificate. 

ii 

The method for electronic commerce of claim 1, wherein said consumer identity and 
authentication information is a consumer's digital certificate and matching asymmetric 
digital signature. 

y[. The method for electronic commerce of claim 1, wherein said consumer identity and 
authentication information is a is a user account number and a symmetric MAC or 
asymmetric digital signature. 

/> 

1£. The method for electronic commerce of claim 1, wherein said consumer identity and 
authentication information is a is a user account number and an asymmetric digital 
signature. 

yi. The method for electronic commerce of claim 1, wherein said consumer identity 
information is a consumer's biometric signal. 

S 

y(. The method for electronic commerce of claim 1, wherein said issuer gateway sends 
said authorization token to said consumer, and the consumer forwards said authorization 
token to said merchant. 

i u 

1^6. The method for electronic commerce of claim 1, wherein said issuer gateway sends 
said authorization token directly to said merchant. 
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The method for electronic commerce of claim 1, wherein said reference to said credit 
card is an alias card number that is mapped at the issuing bank to the real card number, 
5 thereby preventing use of the consumer's credit card number without said authorization 
token. 



J/7. The method for electronic commerce of claim 1, wherein said reference to said card is 
an authorization number allocated uniquely by the issuer gateway for each authorization, 
10 enabling it to be passed by an acquirer gateway back to the issuing bank in a capture 
message; 

said issuing bank maintaining a database mapping authorization numbers to card 
pi numbers, so that when the issuing bank receives the capture message, it uses the database 
$J 15 mapping to determine the consumer's card number. 



25 a digital certificate hierarchy that covers issuing banks, acquiring banks, and merchants. 

20. The method for electronic commerce of claim 19, wherein said certificate hierarchy is 
used with public-key digital signatures to identify said merchant and said issuing bank. 

30 21 . The method for electronic commerce of claim 20, wherein said certificates represent 
common financial agreements and obligations among said merchant and said issuing 



22. The method for electronic commerce of claim 21, wherein the issuing bank 
35 certificates identify and help authenticate issuing banks to merchants, providing a basis 
for the merchants to trust the authorization tokens provided by the issuing banks. 




bank. 
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23. The method for electronic commerce of claim 22, wherein an acquiring bank 
certificate and a merchant certificate identify and help authenticate said acquiring bank 
and said merchant to issuing banks; 

said merchant certificate identifying the merchant to the consumer and verifying that the 
merchant is a valid participant of a payment scheme, before the issuing bank provides 
said authorization token. 



24. The method for electronic commerce of claim 1, wherein split shipments are 
supported by an additional message interaction between the merchant and issuer gateway, 
comprising: 

the merchant sending the authorization token to the issuer gateway identified in 
the issuer's digital certificate, including details of a split requirement, such as the amount 
of a first payment, the merchant authenticating the request by signing it and including the 
merchant's digital certificate; 

the issuer gateway verifying that the merchant signing message is the same 
merchant that signed an original request , verifying the split request according to business 
and risk management policies, and responding with a new authorization token in a 
message to the merchant; 

the merchant forwarding the new authorization token in a capture message the 
acquirer gateway; 

the merchant resubmitting the new authorization token to the acquirer gateway in 
a second message, whenever the merchant has shipped a second part of the shipment. 



claim 1, Japanese Payment Options are 




5. The method for electronic commerce o^ 
provided, comprising: 
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the issuer offering special payment arrangements 
the merchant name from the merchant's digital 
from the initiation message. 



to the consumer, conditioned on 
i certificate and the amount of payment 



26. A system for electronic commerce, comprising: 



a merchant's computer for sending over an internet 
merchant message including a wallet initiation 
a digital certificate from an acquiring bank, saic 
payment amount, an order description, and a tir lestamp 



network to a consumer's computer, a 
i lessage, a merchant digital signature, and 
wallet initiation message including a 



a consumer's wallet program in said consumer'^ computer responsive to said wallet 
initiation message, for sending from said consumer's computer consumer identity and 
authentication information and said merchant r lessage, to an issuer gateway for an 
issuing bank; 

an issuer gateway for verifying said merchant's signature to prove that the consumer is 
dealing with the actual merchant and validating at said issuer gateway the merchant's 
certificate and the acquirer's certificate to pro\|e that the merchant and issuer share a 
common financial arrangement; 

said issuer gateway verifying the consumer's account and ensuring that funds and/or 
credit are available to support the payment amount, then authorizing payment by sending 
over said internet network an authorization toksn, an issuer's digital certificate, said 
wallet initiation message, and a reference to sa d consumer's credit or debit card number; 



said authorization token including the payment] amount, 
random nonce plus a merchant identifier and a 
card number; and 



said merchant's computer receiving said authori 
description. 

27. A computer program product, comprising: 



, order description, timestamp, a 
eference to the consumer's credit or debit 



nation token and fulfilling said order 
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computer program code means for sending frim a merchant's computer over an internet 
network to a consumer's computer, a merchant message including a wallet initiation 
message, a merchant digital signature, and a digital certificate from an acquiring bank, 
said wallet initiation message including a payment amount, an order description, and a 
times tamp; 

computer program code means for starting a consumer's wallet program in said 
consumer's computer in response to said wallet initiation message; 



computer program code means for sending from said consumer's computer consumer 
identity and authentication information aiyi said merchant message, to an issuer gateway 
for an issuing bank; 

computer program code means for verifying at said issuer gateway said merchant's 
signature to prove that the consumer is d baling with the actual merchant and validating at 
said issuer gateway the merchant's certificate and the acquirer's certificate to prove that 

financial arrangement; 



the merchant and issuer share a common 



consur ler 



said issuer gateway verifying the 
credit are available to support the payment 
over said internet network an authorizat 
wallet initiation message, and a referenc e 



's account and ensuring that funds and/or 
amount, then authorizing payment by sending 
on token, an issuer's digital certificate, said 
to said consumer's credit or debit card number; 



said authorization token including the payment amount, order description, timestamp, a 



random nonce plus a merchant identifier 
card number; and 



and a reference to the consumer's credit or debit 



said merchant's computer receiving sai<J authorization token and fulfilling said order 
description. 



28. A data processing system for electronic commerce, comprising: 

a computer processor means for sending from a merchant's computer over an internet 
network to a consumer's computer, a merchant message including a wallet initiation 
message, a merchant digital signature! and a digital certificate from an acquiring bank, 
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Said wallet initiation message including 
timestamp; 



a/payment amount, an order description, and a 



means for sending from said consumers 
information and said merchant message, 



means for starting a consumer's wallet program in said consumer's computer in response 
to said wallet initiation message; 



:omputer consumer identity and authentication 
to an issuer gateway for an issuing bank; 



means for verifying at said issuer gateway said merchant's signature to prove that the 
consumer is dealing with the actual merchant and validating at said issuer gateway the 
merchant's certificate and the acquirer's certificate to prove that the merchant and issuer 
share a common financial arrangement J 



said issuer gateway verifying the consumer's account and ensuring that funds and/or 
credit are available to support the payment amount, then authorizing payment by sending 
over said internet network an authorization token, an issuer's digital certificate, said 
wallet initiation message, and a reference to said consumer's credit or debit card number; 



said authorization token including 
random nonce plus a merchant identif 
card number; and 



the (payment amount, order description, timestamp, a 
er and a reference to the consumer's credit or debit 



said merchant's computer receiving sa 
description. 



d authorization token and fulfilling said order 



3^ & 

1^, The data processing system for electronic commerce of claim which further 
comprises: 



means for sending from said consumer's computer a start message over the internet 
network to the merchant's computer, to initiate said merchant's message. 

3#. The data processing system for electronic commerce of claim ^J8, wherein said 
wallet initiation message includes a nonce. 
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yC. The data processing system for electronic commerce of claim ^f, wherein said 
merchants computer further comprises: 



means for receiving said authorization token; 



means for verifying the issuer's signature, digital certificate, the payment amount and 
merchant identity in the authorization token; 

means for verifying the freshness of the authorization token via the timestamp in the 
token; 

means for using the nonce in the authorization token to recognize duplicate tokens; and 



means for fulfilling said order description. 



}<• 3> 

yi. The data processing system for electronic commerce of claim wherein said 
reference to said credit card is a consumer credit or debit account number. 



33. A method for electronic commerce, comprising: 

sending from a merchant's computer over an internet network to a consumer's computer, a 
merchant message including a wallet initiation message, a merchant digital signature, and 
a digital certificate from an acquiring joank, said wallet initiation message including a 
payment amount, an order description, and a timestamp; 

said acquiring bank's digital certificate containing a network address or URL that 
identifies the network location of £aid acquiring bank contacted via an internet network as 
part of a payment protocol; 

starting a consumer's wallet prq'gram in said consumer's computer in response to said 
Uet initiation message; 
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sending from said consumer's computer consumer identity and authentication information 
and said merchant message, to an issuer gateway fpr an issuing bank; 

verifying at said issuer gateway said merchant's signature to prove that the consumer is 
5 dealing with the actual merchant and validating ai said issuer gateway the merchant's 
certificate and the acquirer's certificate to prove fhat the merchant and issuer share a 
common financial arrangement; 

said issuer gateway verifying the consumer's account and ensuring that funds and/or 
10 credit are available to support the payment amiunt, then authorizing payment by sending 
over said internet network an authorization tolten, an issuer's digital certificate, said 
wallet initiation message, and a reference to said consumer's credit or debit card number; 
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said issuer's digital certificate containing a network address or URL that identifies the 
network location of the issuer contacted via/an internet network as part of a payment 
protocol; 

said authorization token including the payment amount, order description, timestamp, a 
random nonce plus a merchant identifier <pd a reference to the consumer's credit or debit 
card number; and 

said merchant's computer receiving said/authorization token and fulfilling said order 
description. 



34. A method for electronic commerce/, comprising: 



sending from a consumer's computer ionsumer to an issuer gateway for an issuing bank, 
an authorization request message conjaining consumer identity and authentication 
30 information, payment amount, an order description, a timestamp, a digital certificate 
representing a merchant, and a digitaj certificate representing the merchant's acquiring 
bank; 
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said merchant's digital certificate containing a merchant identifier unique for the 
acquiring bank; 
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aid acquiring bank's digital certificate containing a bank identifier unique among all 
banks sharing a common financial arrangement 

validating at said issuer gateway the merchant's certificate and the acquirer's certificate 
to prove that the merchant, acquirer, and issuer share a common financial arrangement; 

said issuer gateway verifying the consumer's/account and ensuring that funds and/or 
credit are available to support the payment amount, then authorizing payment by sending 
over said internet network an authorization token, an issuer's digital certificate, and a 
reference to said consumer's credit or debit dard number; 

said authorization token including the payment amount, order description, timestamp, a 
random nonce, said merchant identifier from the merchant's digital certificate, and said 
acquiring bank identifier from said acquiring bank's digital certificate, plus a reference to 
the consumer's credit or debit card number! 



said authorization token being digitally signed by the issuing bank; and 



said merchant's computer receiving said authorization token and fulfilling said order 
description. 



3^. The method for electronic commerce of claim 3/, which further comprises: 



sending from a merchant's computer over an internet network to a consumer's computer, a 
merchant message including a wallet initiation message, a merchant digital certificate, 
and a digital certificate from an acquiring bank, said wallet initiation message including a 
payment amount, an order description, and a timestamp; 

starting a consumer's wallet program in said consumer's computer in response to said 
wallet initiation message; 

said consumer's wallet program sending the authorization request message. 
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$6. The method for electronic commerce of claim which further comprises: 
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including with the wallet initiation message a merchant's digital signature of the wallet 
initiation message; 

5 including the wallet initiation message and said merchant's digital signature in the 
authorization request message; 

verifying at said issuer gateway said merchant's signature to prove that the consumer is 
dealing with the actual merchant. 

10 

HI «* 

yf. The method for electronic commerce of claim ^6, which further comprises: 

m sending from said consumer's computer a start message over the internet network to the 

y!J 15 merchant's computer, to initiate said merchant's message. 

Ill 

IV 
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The method for electronic commerce of claim wherein said wallet initiation 

,«'? message includes a nonce. 
20 
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yb. The method for electronic commerce of claim ^6, wherein said merchant's computer 

further performs the steps comprising: 
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25 receiving said authorization token; 

verifying the issuer's signature, digital certificate, the payment amount and merchant 
identity in the authorization token; 

30 verifying the freshness of the authorization token via the timestamp in the token; 

using the nonce in the authorization token to recognize duplicate tokens; and 

fulfilling said order description. 

35 
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ty6. The method for electronic commerce of claim ^4, wherein the merchant 

claims payment through the acquiring bank by forwarding the customer reference number 

and payment amount to the acquiring bank. 

44. The method for electronic commerce of claim $6, where in the case of a subsequent 
dispute, the merchant proves payment authorization by submitting a copy of the 
authorization token and issuer's digital certificate to the acquiring bank. 

10 ^ $i 

$d. The method for electronic commerce of claim ^4 5 wherein the merchant 

claims payment through the acquiring bank by forwarding the authorization token and 

issuer's digital certificate to the acquiring bank; 

15 the acquiring bank verifying the issuer's signature on the authorization token, validating 
the issuer's digital certificate, checking for duplicates via the timestamp in the 
& authorization token; and the acquiring bank paying the amount indicated in the 
!|f authorization token. 

iQ 

J.20 Wr 3$ 

p 1 43. The method for electronic commerce of claim ^4, wherein said 

iy authorization request message and authorization token includes a hash of an 

sty 

% order description instead of the actual order description, the order description itself being 
available separately at the merchant, the merchant validating that the authorization token 
25 refers to the same order description by comparing the hash of the order description in the 
authorization token against a locally-computed hash of the same order description. 

jA. The method for electronic commerce of claim wherein said 
reference to said credit card is a consumer credit or debit account number. 

30 i{\ c# 

4^. The method for electronic commerce of claim ^4 9 wherein the confidentiality of said 
credit or debit account number is maintained by using a higher-level security protocol, 
such as encrypted email or SSL, to protect the communications among the consumer and 
the issuer gateway, the consumer and the merchant, the issuer gateway and the merchant, 

35 and, if applicable, the merchant and the acquirer. 
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